139.162.214.192

Basic Info

City: London

Region: England

Country: United Kingdom

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spambotsattack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2023-02-18 16:15:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.162.214.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.162.214.192.		IN	A

;; AUTHORITY SECTION:
.			119	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023021800 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 18 16:15:14 CST 2023
;; MSG SIZE  rcvd: 108

Host info

192.214.162.139.in-addr.arpa domain name pointer kif.scan.leakix.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
192.214.162.139.in-addr.arpa	name = kif.scan.leakix.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.251.20	attackspam	Jun 29 15:27:04 vps sshd[535751]: Invalid user ubuntu from 51.91.251.20 port 36078 Jun 29 15:27:04 vps sshd[535751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-91-251.eu Jun 29 15:27:06 vps sshd[535751]: Failed password for invalid user ubuntu from 51.91.251.20 port 36078 ssh2 Jun 29 15:30:24 vps sshd[553989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-91-251.eu user=root Jun 29 15:30:26 vps sshd[553989]: Failed password for root from 51.91.251.20 port 36488 ssh2 ...	2020-06-30 00:40:08
46.38.145.251	attack	2020-06-29 16:33:17 auth_plain authenticator failed for (User) [46.38.145.251]: 535 Incorrect authentication data (set_id=amber@csmailer.org) 2020-06-29 16:34:00 auth_plain authenticator failed for (User) [46.38.145.251]: 535 Incorrect authentication data (set_id=env@csmailer.org) 2020-06-29 16:34:44 auth_plain authenticator failed for (User) [46.38.145.251]: 535 Incorrect authentication data (set_id=oblako@csmailer.org) 2020-06-29 16:35:26 auth_plain authenticator failed for (User) [46.38.145.251]: 535 Incorrect authentication data (set_id=yesenia@csmailer.org) 2020-06-29 16:36:12 auth_plain authenticator failed for (User) [46.38.145.251]: 535 Incorrect authentication data (set_id=summer@csmailer.org) ...	2020-06-30 00:33:50
222.84.254.88	attack	Jun 29 14:46:22 pornomens sshd\[24980\]: Invalid user kkk from 222.84.254.88 port 37516 Jun 29 14:46:22 pornomens sshd\[24980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.84.254.88 Jun 29 14:46:24 pornomens sshd\[24980\]: Failed password for invalid user kkk from 222.84.254.88 port 37516 ssh2 ...	2020-06-30 00:23:33
2800:810:516:149b:df9:bf5f:10ea:5ec7	attackbotsspam	2800:810:516:149b:df9:bf5f:10ea:5ec7 - - [29/Jun/2020:12:56:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 2800:810:516:149b:df9:bf5f:10ea:5ec7 - - [29/Jun/2020:12:56:04 +0100] "POST /wp-login.php HTTP/1.1" 200 8310 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 2800:810:516:149b:df9:bf5f:10ea:5ec7 - - [29/Jun/2020:13:14:09 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-06-30 00:50:56
91.215.224.97	attackspam	Invalid user admin1 from 91.215.224.97 port 44317	2020-06-30 00:39:35
113.110.43.137	attack	IP reached maximum auth failures	2020-06-30 00:33:04
49.234.237.167	attackspam	Jun 29 16:16:14 ns382633 sshd\[30955\]: Invalid user oracle from 49.234.237.167 port 60112 Jun 29 16:16:14 ns382633 sshd\[30955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.237.167 Jun 29 16:16:15 ns382633 sshd\[30955\]: Failed password for invalid user oracle from 49.234.237.167 port 60112 ssh2 Jun 29 16:36:46 ns382633 sshd\[2170\]: Invalid user testftp from 49.234.237.167 port 41728 Jun 29 16:36:46 ns382633 sshd\[2170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.237.167	2020-06-30 00:33:27
49.233.185.63	attack	Jun 29 11:04:02 ns3033917 sshd[8367]: Invalid user jdc from 49.233.185.63 port 60174 Jun 29 11:04:04 ns3033917 sshd[8367]: Failed password for invalid user jdc from 49.233.185.63 port 60174 ssh2 Jun 29 11:09:31 ns3033917 sshd[8491]: Invalid user pool from 49.233.185.63 port 51492 ...	2020-06-30 00:44:56
112.21.191.10	attackbotsspam	2020-06-29T15:41:02.400317galaxy.wi.uni-potsdam.de sshd[20700]: Invalid user minecraft from 112.21.191.10 port 50564 2020-06-29T15:41:04.267474galaxy.wi.uni-potsdam.de sshd[20700]: Failed password for invalid user minecraft from 112.21.191.10 port 50564 ssh2 2020-06-29T15:42:28.714744galaxy.wi.uni-potsdam.de sshd[20850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.10 user=root 2020-06-29T15:42:30.381383galaxy.wi.uni-potsdam.de sshd[20850]: Failed password for root from 112.21.191.10 port 37528 ssh2 2020-06-29T15:43:57.378735galaxy.wi.uni-potsdam.de sshd[20999]: Invalid user camara from 112.21.191.10 port 52726 2020-06-29T15:43:57.380746galaxy.wi.uni-potsdam.de sshd[20999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.10 2020-06-29T15:43:57.378735galaxy.wi.uni-potsdam.de sshd[20999]: Invalid user camara from 112.21.191.10 port 52726 2020-06-29T15:43:59.599292galaxy.wi.uni-potsda ...	2020-06-30 00:45:40
159.89.164.199	attackspambots	Failed password for invalid user demo from 159.89.164.199 port 44394 ssh2	2020-06-30 00:28:49
60.167.176.251	attackbots	Jun 29 15:32:07 vps sshd[1422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.176.251 Jun 29 15:32:09 vps sshd[1422]: Failed password for invalid user ecastro from 60.167.176.251 port 44964 ssh2 Jun 29 15:47:46 vps sshd[2357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.176.251 ...	2020-06-30 00:56:31
182.155.205.181	attackbotsspam	TCP (SYN) 182.155.205.181:9654 -> port 23, len 40	2020-06-30 01:02:50
85.119.151.251	attackspam	06/29/2020-11:14:44.222504 85.119.151.251 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-30 00:39:02
66.84.122.131	attackspambots	Jun 29 14:09:27 server2 sshd\[26640\]: Invalid user admin from 66.84.122.131 Jun 29 14:09:29 server2 sshd\[26642\]: User root from 66.84.122.131 not allowed because not listed in AllowUsers Jun 29 14:09:30 server2 sshd\[26644\]: Invalid user admin from 66.84.122.131 Jun 29 14:09:31 server2 sshd\[26646\]: Invalid user admin from 66.84.122.131 Jun 29 14:09:33 server2 sshd\[26648\]: Invalid user admin from 66.84.122.131 Jun 29 14:09:34 server2 sshd\[26650\]: User apache from 66.84.122.131 not allowed because not listed in AllowUsers	2020-06-30 00:42:50
176.59.109.218	attack	xmlrpc attack	2020-06-30 00:21:17

Recently Reported IPs

134.209.207.188	34.254.53.125	35.191.42.195	114.119.129.181
20.25.221.108	80.153.195.160	49.238.22.70	32.217.94.176
31.212.91.82	247.143.78.150	23.12.229.1	214.107.23.66
208.83.8.151	182.109.81.147	163.170.76.177	120.233.29.243
78.99.213.111	78.99.255.255	89.205.31.43	168.55.28.40